The attackers who stole the credit and debit card data from Juspay by now start selling it on the Dark Web along with other three companies’ data, claimed by independent security researcher Mr. Rajeshekhar Rajaharia on Wednesday.

According to security researchers, the hackers who first hack JusPay also compromised the data of three companies ClickIndia, ChqBook, and WebMeGood. This attack goes worst, the hacker can steal around 80 lakh users’ data which includes user name, email, mobile, address, and other personal information) from ClickIndia. Whereas more than 10 lakh ChqBook users data was compromised and around 13 lakhs users of WeMeGood.

The names of these three Indian companies were previously reported by other agencies, describing the data breach or data stolen issue by 26 companies.

Just like JusPay, ChqBook and ClickIndia also declined about the data breach, Juspay told that their secure data store that sensitive user information, was not compromised or accessed. The company also added that all the Juspay customers were secured from all the risks and this is our priority to inform our merchants about the precautions taken, we will also issue fresh API keys for better security enhancement.

Whereas Sonit Jain, CEO of GajShied Infotech says that such attacks confirmed the irrespective data sensitivity and also they leave a negative impression over the digital modes of payment. Data like email Id and Phone number turn out to be complicated if they were fallen into wrong hands.

Experts Views

The security researcher also says that the attacker who compromised Juspay data is the same one who caught in the BigBasket data leaked that was reported by Cyble.

Cyble on October 14 detected this attack and after validation completed in November, they reported that around 20 million of user data including name, email id, password, pin, contact numbers, addresses, date of birth, IP address, location were stolen from popular grocery store BigBasket, as the hacker sell it on Dark Web in exchange of $40.000.

There is a strong connection between all these hacks because the hacker group leaked the data of Juspay and three others, now demanding over $10,000 bitcoin.

On the other hand, Juspay on Tuesday revealed that around 3.5 crore records that consist of masked data and card fingerprint were stolen by this hacker and also denies that the information that the claim of “10 Crore cardholder data is leaked was incorrect”